6.9 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.148 Low
EPSS
Percentile
95.8%
nsrd.exe in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup (SBU) 6.0 and 6.1 and StorEdge Enterprise Backup Software (EBS) 7.1 through 7.2L, allows remote attackers to cause a denial of service (nsrd service crash) via a malformed RPC request to RPC program number 390109, which triggers a null dereference.
ftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990/README.TXT
secunia.com/advisories/18495
secunia.com/advisories/18615
securitytracker.com/id?1015500
securitytracker.com/id?1015545
sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102148-1
www.idefense.com/intelligence/vulnerabilities/display.php?id=375
www.legato.com/support/websupport/product_alerts/011606_NW.htm
www.securityfocus.com/bid/16275
www.vupen.com/english/advisories/2006/0233
www.vupen.com/english/advisories/2006/0343
exchange.xforce.ibmcloud.com/vulnerabilities/24173